Steering connection requests for an access point to a best-serving access point

ABSTRACT

Network devices are steered to preferred access points using a probability function. A probe request for connection is received from a network device. The probe request can be from a network device attempting to use a wireless network (e.g., a IEEE 802.11-type network or other suitable type of network). A probability function that defines a likelihood of granting the network device a connection is used to determine whether to accept or deny the response. The probe response is then sent to the network device.

CROSS-REFERENCE TO RELATED APPLICATIONS

This application is a continuation of U.S. patent application Ser. No.14/727,868, filed Jun. 2, 2015, entitled STEERING CONNECTION REQUESTSFOR AN ACCESS POINT TO A BEST-SERVING ACCESS POINT, which is acontinuation of U.S. patent application Ser. No. 13/746,289, entitledDISTRIBUTED CLIENT STEERING ALGORITHM TO A BEST-SERVING ACCESS POINT bySung-Wook HAN et al. and filed on Jan. 21, 2013, the content of which isincorporated herein by reference in its entirety.

FIELD OF THE INVENTION

The invention relates generally to computer networking, and morespecifically, to steering network devices to connect with preferredaccess points using probability functions.

BACKGROUND

Wireless computing technologies provide untethered access to theInternet and other networks. One of the most critical technologies forwireless networking (or Wi-Fi) is the IEEE 802.11 family of protocolspromulgated by the Institute of Electrical and Electronics Engineers.Currently, the protocols are widely adopted in wireless devices such aslaptop computers, tablet computers, smart phones, and networkappliances.

Wireless devices complying with standards such as IEEE 802.11 havecontrol over how a connection to a wireless network is made. Namely, awireless device selects an access point among a number of access pointswithin range that have sent out beacons advertising a presence. Thebeacon includes a BSSID (Basic Service Set IDentifier) as an identifierof the access point. In turn, the wireless device sends data packetswhich include the BSSID of the intended access point. Access pointsreceiving a transmission intended for a different access point, asdetermined by the BSSID, merely ignore the data packets.

Problematically, wireless devices act in self-interest and withoutconsideration for burdens or capabilities of an access point or othercomponents in a wireless network, or other conditions affecting thewireless network. In fact, wireless devices, being unaware of networkconditions, can also make a connection against their own best interestwhen a more capable access point is within range and available.Ultimately, the lack of information given to a decision-making device isan inherent weakness of IEEE 802.11 and other network protocols.

A client running on a wireless device is not always a desirablesolution. For instance, guests connecting to a public hot spot for onlyone time would be burdened with the process of downloading andinstalling a client. Furthermore, many computer users are weary aboutmalicious applications downloaded from the Internet. Finally, the clientis another background process consuming processing and memoryavailability of wireless devices.

What is needed is a technique to steer network devices to connect withpreferred access points. Further, the technique should be adaptable tomake independently-behaving access points make connection decisions thatbenefit the network as a whole.

SUMMARY

To meet the above-described needs, methods, computer program products,and systems are described herein to steer network devices to preferredaccess points using a connection-accept probability function.

A probe request for connection is received from a network device. Theprobe request can be from a network device attempting to use a wirelessnetwork (e.g., a IEEE 802.11-type network or other suitable type ofnetwork). A probability function that defines a likelihood of grantingthe network device a connection is used to determine whether to respondto the request or not. If the probability function grants a connection,the probe response is then sent to the network device. The higher thegrant probability is, the more likely the connection-requesting clientgets connected.

The probability function is based on at least one of local conditionsand network device conditions. In some embodiments, system-wideconditions are also taken into account. Moreover, a probability functioncan be bypassed, or progressively adjusted, as the same network devicecontinues to make connection attempts.

Advantageously, a wireless network can improve performance by spreadingthe burdens across components based on availability. Moreover, noconfiguration is needed on a network device (e.g., downloading aclient).

BRIEF DESCRIPTION OF THE DRAWINGS

In the following figures, like reference numbers are used to refer tolike elements. Although the following figures depict various examples ofthe invention, the invention is not limited to the examples depicted inthe figures.

FIG. 1A is a high-level block diagram illustrating a distributed systemto steer network devices using probability functions, according to oneembodiment.

FIG. 1B is a more detailed block diagram illustrating a network deviceof the system of FIG. 1A, according to one embodiment.

FIG. 1C is a more detailed block diagram illustrating an access point ofthe system of FIG. 1A, according to one embodiment.

FIG. 2 is a block diagram illustrating a method for steering networkdevices using probability functions, according to one embodiment.

FIG. 3 is a block diagram illustrating a method for determining aresponse from a probability function, from the method of FIG. 2,according to one embodiment.

FIG. 4 is a block diagram illustrating a method for generating theprobability function based on conditions, from the method of FIG. 3,according to one embodiment.

FIG. 5 is a schematic diagram illustrating an exemplary probabilityfunctions, according to one embodiment.

FIG. 6 is a block diagram illustrating an exemplary computing device,according to one embodiment.

DETAILED DESCRIPTION

The present invention provides methods, computer program products, andsystems to steer network devices to preferred access points using aprobability function of each of the access points without system-widecentral coordination. In other words, each access point makes its owndecision on whether it grants a new station's connection or not.Generally, a probability function (or grant profile, or probabilityprofile) defines the likelihood that a connection-requesting client getsconnected. For example, grant probability can decrease as networkconditions become harsher. In another example, grant probability canincrease for authorized devices relative to guest devices. Assertingcontrol over network devices is particularly valuable for wirelessnetworks such as IEEE 802.11-type networks (e.g., 802.11a, 802.11b,802.11g, 802.11n, 802.11ac, or other IEEE, non-IEEE or custom protocols)which inherently grant connectively selection (i.e., selection of anaccess point) to network devices.

Systems to Steer Network Device Connections (FIGS. 1A-1C)

FIG. 1A is a high-level block diagram illustrating a system 100 to steernetwork devices using probability functions, according to oneembodiment. The system 100 includes access points 120A-N coupled 115A-Nto network devices 110A-N and also coupled to a network 199 (e.g., aLAN, WAN, the Internet, a cloud-based network, a data network, acellular network, a hybrid network, or the like). The system 100 of FIG.1A distributes implementation of probability functions to access points120A-N. In alternate implementations, a central controller cancontribute to probability functions. In operation, network devices110A-N probe one of the access points 120A-N, for a connection to awireless network (e.g., through a gateway), which steer the accesspoints in accordance with the probability functions.

The access points 120A-N include one or more individual access pointsthat interact with network devices 110A-N to control medium access. Anindividual access point can be any of the computing devices describedherein (also see generally, FIG. 6). For example, the access points120A-N can be an AP 110 or AP 433 (modified as discussed herein) by MeruNetworks of Sunnyvale, Calif. Each access point 110A-N is preferablyconnected to the network 199 (e.g., gateway, switch, router, hub, oranother access point that is connected to the network 199) via a wiredconnection, but in some embodiments, such as a mesh network, the uplinkconnection is wireless. The access points 120A-N can be set-up invarious configurations to provide wireless coverage areas. In anotherembodiment, the functionality is incorporated into a switch or router.In operation, the access points 120A-N broadcast beacons with a BSSID(Basic Service Set IDentifier) to advertise a presence over acorresponding range. A probe request is received from network devices110A-N that have selected a particular access point for connection. Theaccess points 120A-N determine a response from a probability function,and send a probe response allowing or refusing the connection.

For example, a number of current connections can be one factor thataffects probability functions. In system 100, the access point 120A hasone connection, the access point 120B has two connections, and theaccess point 120N has no connections. As a result, a new network deviceconnection may have the best chance of connecting to the access point120N, the access point 120A, and then the access point 120B in thatorder, assuming that all other conditions are equal. From anotherperspective, out of 100 connection requests, the access point 120N maybe likely to accept 95%, the access point 120A may accept 80%, and theaccess point 120B may accept 43%.

In a sample connection sequence, a new network device attemptsconnection with the access point 120N and is denied, even though theprobability is small. It re-attempts after being denied by the accesspoint 120B, which has a relatively larger probability of denial due tothe multiple existing connections. The new network device then returnsto the access point 120N for a second request. Besides having an initiallow probability of being denied, some embodiments lower the thresholdeven further upon subsequent requests from the same network device.Therefore, the second request is highly likely to be granted. Of course,numerous other examples and connection sequences are possible.

In FIG. 1A, the access points 120A-N are distributed, and thus, operatein an independent manner. In particular, each access point determines aprobability function 150A-C internally. In this case, the probabilityfunctions probability function 150A-C serve as a tool to inferconditions around the network. If the same network device continuallyrequests a connection to a particular access point, that access pointinfers that other access points are also carrying a high capacity.Consequentially, a decentralized system of access points can operate ina coordinate manner without any direct communication with other accesspoints. More detailed embodiments of the access point are set forthbelow in FIG. 1B.

The network devices 110A-N can be, for example, a personal computer, alaptop computer, a tablet computer, a smart phone, a mobile computingdevice, an Internet appliance, a non-wireless device modified to havewireless capabilities, or any other computing device (see generally,FIG. 6). A network device is wirelessly coupled to an access point. Nopre-configuration or client is needed, in an embodiment. In analternative embodiment, the network device participates in probabilisticconnections by, for example, having characteristics or behaviors thataffect probability functions. The network devices 110A-N operateaccording to standards in which an access point is selected by thenetwork devices 110A-N themselves (e.g., IEEE 802.11). However, it isthe access points 120A-N that directs the network devices 110A-N intoselecting an preferred access point. Conditions associated with thenetwork device can affect the preference. For example, an RSSI (ReceivedSignal Strength Indicator), a distance from a particular access point,connection history, a user of the network device, a type of traffic, andthe like can cause a network device to be steered away from certainaccess point and towards others. Embodiments of then network devices110A-N are discussed in more detail below in association with FIG. 1C.

In an optional embodiment, a controller 110 (e.g., an MC1500 or MC6000device by Meru Networks of Sunnyvale, Calif. as described in U.S.application Ser. No. 13/426,703 filed Mar. 22, 2012 andcommonly-assigned) provides centralized management for access points. Asa result, the controller can assist by, for example, providing defaultprobability functions to new access points that join the wirelessnetwork, generating updated probability functions, or feedinginformation to the access points 120A-N to aid local generation ofprobability functions. Additionally, due to system-wide communicationwith components, system-wide conditions can be observed and factoredinto probability functions. The controller can provide many otherservices to the network 199 such as virtual cell and virtual portfunctionalities (also described in U.S. application Ser. No.13/426,703).

FIG. 1B is a more detailed block diagram illustrating an access point120 of the system 100, according to one embodiment. The access point 120comprises a probability function engine 122, a connections manager 124,a network module 126, and a radio array 128. The components can beimplemented in hardware, software, or a combination of both.

The probability function engine 122 receives, adjusts, and or generatesprobability functions, depending on the implementation as discussedabove in connection with FIG. 1A.

The connections manager 124 maintains a table of connected networkdevices, along with related states of those network devices, and thelike. In one embodiment, the connections manager 124 can also trackstatistics used for determining probability functions, such as number ofconnections, loads, throughput, and packet loss.

The network connection module 126 can be similar to the network module114 of the network device 110 of FIG. 1C. Furthermore, the networkmodule 126 can provide hub, switching, or routing functionalitydepending on a network configurations. For example, data packets sentover an uplink from a network device can be forwarded to the Internet.Also, control packets can be received from a controller.

The radio array 128 can be similar to the radio array 116 of the networkdevice 110 of FIG. 1C.

FIG. 1C is a more detailed block diagram illustrating a network deviceof the system 100, according to one embodiment. The network device 110comprises a network application 112, a network connection module 114,and a radio array 116. The components can be implemented in hardware,software, or a combination of both.

The network application 112 can be any application executing on thenetwork device 110 that makes use of network access in operation.Examples of the network application 112 include a network browser, aVOIP telephone service, a streaming video player, a database viewer, aVPN client, and the like.

The network connection module 114 is responsible for connecting to acommunication channel for data exchange. To do so, the networkcommunication module 114 listens for beacons broadcast by access points,and generates a probe request to connect to a selected access point.After connecting, the network connection module 114 exchanges datapackets and unpacks data packets in accordance with, e.g., a TCP/IPstack. More particularly, IEEE 802.11-type packets can be generated andreceived.

The radio array 116 includes one or more transmit (Tx) and receive (Rx)antennas for communication with the physical layer. Some network devices110 include separate antennae for IEEE 802.11a, IEEE 802.11b and IEEE802.11n. Other network devices 110 includes several antenna dedicatedfor separate transmit and receive paths using the MIMO functionality ofIEEE 802.11n.

Methods for Steering Network Device Connections (FIGS. 2-5)

FIG. 2 is a block diagram illustrating a method 200 for steering networkdevices using probability functions, according to one embodiment.Although new connections are discussed herein as triggering networksteering of a network device, existing connections can be steered aswell. For instance, an existing connection can be terminated in anoverburdened access point with the intention of steering the terminatednetwork device towards a less burdened access point. Also, a probabilityfunction can be completely or partially revised for subsequentconnection requests. <NB: I DELETED REF NUM 200 in FIG. 2>

At step 210, a probe request for connection is received from a networkdevice. The probe request can include information, such as a BSSID andother information gathered from a beacon previously sent by an accesspoint. The probe request also identifies a network device so that theaccess point would be able to identify subsequent communications.

At step 220, a response is determined from a probability function. At ahigh-level, one or more conditions are taken into account. Conditionscan be dynamic (e.g., current amount of network bandwidth, RSSI or nonWi-Fi interference noise level) or static (access point hardware or OSversion, band preference such as IEEE 802.11a over IEEE 802.11 b or g).In one aspect, system-wide conditions, such as total number ofconnections, router or switch loads, time of day, day of week, andspectrum usage or capacity, allows a controller or cooperating accesspoints to react to broad conditions. In another aspect, access pointconditions, such as number of connections, processing load, memory orcache availability, and current packet loss, allow an access point toact more selfishly in protecting itself from overloading. In stillanother aspect, network device conditions, such as RSSI, flight time ofpackets, number of connection requests, device user, and connectionhistory, are rebuttals that distinguish the needs of one network devicein comparison to others. An example of step 220 is discussed below withrespect to FIG. 3.

In step 230, a probe response is sent to the network device. Based onresults of applying conditions probability functions, a response isgenerated. A decision to deny can result in ignoring the request, or apacket being sent back with the denial. A connected device can beginwireless communication. Meanwhile, rejected device can attempt toconnect with another access point or make additional requests to thesame access point until successful.

FIG. 3 is a block diagram illustrating a method 300 for determining aresponse from a probability function, according to one embodiment. Atstep 310, if a threshold for a number of requests is reached, forexample, from a particular network device over a period of time, thedecision processed is bypassed to allow a connection 315. Other factorscan also trigger the bypass, such as a connection history that indicatesa network device or user is critical to an entity (e.g.,highly-available server, user that is executive at company). In someimplementations, the threshold bypass is not available.

At step 310, if a threshold for a number of requests has not yet beenreached, conditions are received from one or more of a controller,associated access points, and network devices at step 320. Theconditions can vary widely and be weighted in accordance with individualnetwork implementations. For system-wide conditions, sensors around anetwork, diagnostic applications, operating systems, system logs, andother components can provide relevant information. For access point andnetwork device conditions, a client can send information to a controllerover the network intermittently, or responsive to status checks.Additionally, an operating system can provide internal informationrelating to current processing, memory and cache loads.

At step 330, a probability function is generated based on theconditions. The probability function can be a single probability curveor a set of curves. Generally, a probability curve (or probability mass,probability density, or probability density) is a function describingthe probability of a random variable taking certain values. Theconditions are random variables. The probability curve can becontinuous, discrete, or both. Generation can occur once until manuallychanged, over predetermined intervals, or on-the-fly upon eachconnection request. Additional embodiments for function generations aredetailed below in association with FIG. 4.

At step 340, the conditions are applied to the probability function todetermine a response. The conditions supply one or more variablesplugged into a formula that represents the probability function. Also,the conditions can filter a set of curves down to a single probabilityfunction. The probability function yields a single value from 0 to 1.0representing a percentage. A set of 100 requests applied to a value of0.50 converges upon 50 acceptances and 50 denials (i.e., 50% acceptancerate). Likewise, 100 requests applied to a value of 0.75 converges upon75 acceptances and 25 denials (i.e., 75% acceptance rate).

FIG. 4 is a block diagram illustrating the method 330 for generating theprobability function based on conditions, according to one exemplaryembodiment. In the example, at step 410, an initial probability functionis received as shown in graph 510 of FIG. 5. The initial curve can beconfigured to be any type of distribution (e.g., an exponential decaycurve, a partial parabolic curve, a linear curve, uniform, or a hybrid).Preferably, the probability decreases as conditions become harsher. As aresult, an overburdened access point steers away new connections tothose with less of a burden. Furthermore, an initial probability curvecan set adjustable or non-adjustable boundaries. In particular, a Pmin(minimum probability) at an Xmax, defines a lower bound of acceptanceprobabilities. Moreover, an Xmin defines a guaranteed response, forconditions below the thresholds. In other words, an access point can beforced to deal with a certain amount of burdens, regardless ofperipheral conditions. The initial curve can be a default curve thattakes in no factors of a wireless network, or the initial curve can bepreconfigured based on historical behavior of the wireless network.

At step 420, the probability function is adjusted based on network-wideconditions. Examples of network-wide conditions included total number ofconnections, router or switch loads, spectrum usage or capacity, time ofday and day of the week. As illustrated by graph 520 a network-wideconditions probability curve can be combined with the initial curve suchthat the x-access includes more than one variable (i.e., default valuesand network-wide conditions. The graph 520 includes a probability curvethat decrease linearly with an increase in burden. In one embodiment,the network-wide conditions curve (or other condition curve) can be theinitial curve.

At step 430, the probability function is adjusted based on access pointconditions. Examples of access point conditions include number ofconnections, processing load, memory or cache availability, currentpacket loss, time of day and day of the week. Graph 530 shows aprobability curve with exponential decay in which an access point burdenhas an increasing effect on probability value.

At step 440, the probability function is adjusted based on networkdevice conditions. Examples of access point conditions include RSSI,flight time of packets, number of connection requests, device user, andconnection history. The connection history can be positive in that if anetwork device is identified as a priority device, a favorableprobability function can be generated, or even bypassed. On the otherhand, a negative connection history can result from, for example, anetwork device associated with malicious activity.

Graph 540 illustrates a probability curve with an inverse exponentialdecay. Further, the boundaries of guaranteed service are set high.Consequentially, conditions of a network device has a relatively smallereffect on probability value.

At step 450, the probability function is adjusted based on a number ofconnection attempts. Graph 550 illustrates how probability valueincreases along with the number attempts. The affect increases with thenumber of attempts to give priority for more persistent or longerwaiting network devices. In some embodiments, connection attempts of asingle networked device are tracked relative to connectionprobabilities. However, the access point may be the only availableaccess point covering a particular area, or may be the only access pointavailable to accept connections, making the probabilistic approach lessvaluable. Therefore, in other embodiments, connection attempts ofseveral networked devices are tracked with the possibility ofcontinually lowering a bypass threshold for automatically allowing aconnection.

At step 460, the final probability function is output. The output canconsist of one or more curves expressed as a formula or probabilityvalue.

One of ordinary skill in the art will recognize the myriad ofprobability curves, boundaries, types of conditions, combinations ofconditions (and corresponding weighting of conditions) that arepossible, given the disclosure herein.

Generic Computing Device (FIG. 6)

FIG. 6 is a block diagram illustrating an exemplary computing device 600for use in the system 100A of FIG. 1, according to one embodiment. Thecomputing device 600 is an exemplary device that is implementable foreach of the components of the system 100, including the network device110, and the access point 120. Additionally, the computing device 600 ismerely an example implementation itself, since the system 100 can alsobe fully or partially implemented with laptop computers, tabletcomputers, smart cell phones, Internet appliances, and the like.

The computing device 600, of the present embodiment, includes a memory610, a processor 620, a storage device 630, and an I/O port 640. Each ofthe components is coupled for electronic communication via a bus 699.Communication can be digital and/or analog, and use any suitableprotocol.

The memory 610 further comprises network applications 612 and anoperating system 614. The network applications 620 can include themodules of network applications or access points as illustrated in FIGS.1B and 1C. Other network applications can include 612 a web browser, amobile application, an application that uses networking, a remoteapplication executing locally, a network protocol application, a networkmanagement application, a network routing application, or the like.

The operating system 614 can be one of the Microsoft Windows® family ofoperating systems (e.g., Windows 95, 98, Me, Windows NT, Windows 2000,Windows XP, Windows XP x64 Edition, Windows Vista, Windows CE, WindowsMobile, Windows 7 or Windows 8), Linux, HP-UX, UNIX, Sun OS, Solaris,Mac OS X, Alpha OS, AIX, IRIX32, or IRIX64. Other operating systems maybe used. Microsoft Windows is a trademark of Microsoft Corporation.

The processor 620 can be a network processor (e.g., optimized for IEEE802.11), a general purpose processor, an application-specific integratedcircuit (ASIC), a field programmable gate array (FPGA), a reducedinstruction set controller (RISC) processor, an integrated circuit, orthe like. Qualcomm Atheros, Broadcom Corporation, and MarvellSemiconductors manufacture processors that are optimized for IEEE 802.11devices. The processor 620 can be single core, multiple core, or includemore than one processing elements. The processor 620 can be disposed onsilicon or any other suitable material. The processor 620 can receiveand execute instructions and data stored in the memory 610 or thestorage device 630.

The storage device 630 can be any non-volatile type of storage such as amagnetic disc, EEPROM, Flash, or the like. The storage device 630 storescode and data for applications.

The I/O port 640 further comprises a user interface 642 and a networkinterface 644. The user interface 642 can output to a display device andreceive input from, for example, a keyboard. The network interface 644connects to a medium such as Ethernet or Wi-Fi for data input andoutput. In one embodiment, the network interface 644 includes IEEE802.11 antennae.

Many of the functionalities described herein can be implemented withcomputer software, computer hardware, or a combination.

Computer software products (e.g., non-transitory computer productsstoring source code) may be written in any of various suitableprogramming languages, such as C, C++, C#, Oracle® Java, JavaScript,PHP, Python, Perl, Ruby, AJAX, and Adobe® Flash®. The computer softwareproduct may be an independent application with data input and datadisplay modules. Alternatively, the computer software products may beclasses that are instantiated as distributed objects. The computersoftware products may also be component software such as Java Beans(from Sun Microsystems) or Enterprise Java Beans (EJB from SunMicrosystems).

Furthermore, the computer that is running the previously mentionedcomputer software may be connected to a network and may interface toother computers using this network. The network may be on an intranet orthe Internet, among others. The network may be a wired network (e.g.,using copper), telephone network, packet network, an optical network(e.g., using optical fiber), or a wireless network, or any combinationof these. For example, data and other information may be passed betweenthe computer and components (or steps) of a system of the inventionusing a wireless network using a protocol such as Wi-Fi (IEEE standards802.11, 802.11a, 802.11b, 802.11e, 802.11g, 802.11i, and 802.11n, justto name a few examples). For example, signals from a computer may betransferred, at least in part, wirelessly to components or othercomputers.

In an embodiment, with a Web browser executing on a computer workstationsystem, a user accesses a system on the World Wide Web (WWW) through anetwork such as the Internet. The Web browser is used to download webpages or other content in various formats including HTML, XML, text,PDF, and postscript, and may be used to upload information to otherparts of the system. The Web browser may use uniform resourceidentifiers (URLs) to identify resources on the Web and hypertexttransfer protocol (HTTP) in transferring files on the Web.

This description of the invention has been presented for the purposes ofillustration and description. It is not intended to be exhaustive or tolimit the invention to the precise form described, and manymodifications and variations are possible in light of the teachingabove. The embodiments were chosen and described in order to bestexplain the principles of the invention and its practical applications.This description will enable others skilled in the art to best utilizeand practice the invention in various embodiments and with variousmodifications as are suited to a particular use. The scope of theinvention is defined by the following claims.

We claim:
 1. A computer-implemented method in an access point in awireless network for steering connection requests from network devicesto a preferred access point of a wireless network, comprising:connecting to the wireless network; receiving a probe request forconnection from a network device; measuring a value of a conditionassociated with the wireless network; responsive to the probe request,generating a probability function that defines a likelihood of grantingthe network device a connection, wherein the probability functiongeneration is dependent up on the condition value that is measured;applying the probability function to determine a response to the proberequest; and sending the probe response to the network device.
 2. Themethod of claim 1, wherein the step of measuring the conditioncomprises: responsive to the probe request, measuring the conditionassociated with the network.
 3. The method of claim 1, wherein thecondition comprises at least one of: total number of connections, routeror switch loads, time of day, and spectrum usage or capacity.
 4. Themethod of claim 1, further comprising: measuring an input condition,wherein applying the probability function to determine a response to theprobe request comprises using the input condition as an input andreceiving a probability value as an output.
 5. The method of claim 1,wherein the condition comprises a network device condition affecting theprobability function comprise at least one of an RSSI (Received SignalStrength Indicator), and a connection history.
 6. The method of claim 1,wherein the probability function is also based on system-wide conditionsaffecting the probability function and comprise at least one of totalnumber of connections, router or switch loads, spectrum usage orcapacity, time of day and day of the week.
 7. The method of claim 1,further comprising: receiving system-wide conditions from a controllerthat is in communication with other access points on the wirelessnetwork.
 8. The method of claim 1, further comprising: generating theprobability function, wherein the probability function comprises aprobability curve as a sliding scale having a higher probability forfavorable local or network device conditions and a lower probability ofless favorable local or network device conditions.
 9. The method ofclaim 8, wherein the probability function is generated at a controllerthat is in communication with a plurality of access points, wherein theprobability function is also based on system-wide conditions.
 10. Themethod of claim 8, wherein generating the probability functioncomprises: generating the probability function at the access point thatis in communication with other access points of the wireless network,wherein the probability function is also based on system-wideconditions.
 11. The method of claim 8, wherein generating theprobability function comprises: generating the probability function atthe access point that is not in communication with other access pointsof the wireless network.
 12. The method of claim 1, further comprising:responsive to receiving a preconfigured number of subsequent proberequests from the network device, bypassing application of theprobability function to allow the connection.
 13. The method of claim 1,further comprising: responsive to receiving a subsequent probe request,applying a progressively less restrictive probability function, whereinthe probability function comprise a set of probability curves.
 14. Themethod of claim 1, wherein the network device complies with a wirelessprotocol allowing the network device to select an access point forconnecting to the wireless network.
 15. The method of claim 1, whereinthe wireless network comprises an IEEE 802.11 type of network.
 16. Themethod of claim 1, further comprising: prior to receiving the connectionrequest, broadcasting a beacon that is received by the network device.17. The method of claim 1, further comprising: wherein sending the proberesponse to the network device comprises denying the connection request;in response to the denial, receiving a probe request for connection fromthe network device, at a second access point; receiving a secondprobability function that defines a likelihood of granting the networkdevice a connection, the probability function based on at least one oflocal conditions and network device conditions; applying the secondprobability function to determine a second response to the proberequest; and sending the second probe response to the network device.18. A computer-implemented method in a controller managing a pluralityof access points in a wireless network, the method for steeringconnection requests from network devices to a preferred access point ofa wireless network, comprising: connecting to the wireless network forcommunicating with the plurality of access points; measuring a value ofa system-wide condition associated with the wireless network; generatingprobability functions based on the system-wide condition; anddistributing at least one of the probability functions to at least oneof the plurality of access points, wherein responsive to receiving aprobe request, the at least one access point applies the at least oneprobability function to determine a response to the probe request andsends the probe response to the network device.
 19. An access point in awireless network for steering connection requests from network devicesto a preferred access point of a wireless network, the access pointcomprising: a processor; and a memory, storing: a first module toconnect to the wireless network; a second module to receive a proberequest for connection from a network device; a third module to measurea value of a condition associated with the wireless network; a fourthmodule, responsive to the probe request, to generate a probabilityfunction that defines a likelihood of granting the network device aconnection, wherein the probability function generation is dependent upon the condition value that is measured; a fifth module to apply theprobability function to determine a response to the probe request; and asixth module to send the probe response to the network device.